PT-2020-8218 · Samsung · Persona+1
Published
2020-04-07
·
Updated
2020-04-08
·
CVE-2017-18669
CVSS v3.1
7.5
High
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N |
Name of the Vulnerable Software and Affected Versions:
Samsung mobile devices with N(7.x) software
Description:
An issue was discovered that allows the launch of any activity with system privileges due to an unprotected API in Persona.
Recommendations:
For Samsung mobile devices with N(7.x) software, consider restricting access to the Persona API to minimize the risk of exploitation.
Fix
Incorrect Default Permissions
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Persona
Samsung Mobile Devices